Server User Manual

ManualsBrandsRed Hat ManualsServer8.1

271

272

273

274

275

276

277

278

279

280

ldapdelete

265

Option Description

the -P option calls out a path and filename

similar to the following:

-P /etc/dirsrv/slapd-instance_name/client-

cert.db

-Q Specifies the token and certificate name, which

is separated by a semicolon (:) for PKCS11.

-W Specifies the password for the certificate

database identified on the -P option. For

example:

-W serverpassword

-Z Specifies that SSL is to be used for the delete

request.

-ZZ Specifies the Start TLS request. Use this option

to make a cleartext connection into a secure

one. If the server does not support Start TLS,

the command does not need to be aborted; it will

continue in plain text.

-ZZZ Enforces the Start TLS request. The server

must respond that the request was successful.

If the server does not support Start TLS, such

as Start TLS is not enabled or the certificate

information is incorrect, the command is aborted

immediately.

Table 6.16. ldapdelete SSL Options

SASL Options

SASL mechanisms can be used to authenticate a user, using the -o the required SASL information.

To learn which SASL mechanisms are supported, search the root DSE. See the -b option in Table 6.3,

“Commonly-Used ldapsearch Options”.

Option Description

-o Specifies SASL options. The format is -o

saslOption=value. saslOption can have one of

six values:

• mech, the SASL authentication mechanism

• authid, the user who is binding to the server

(Kerberos principal)

• authzid, a proxy authorization (ignored by

the server since proxy authorization is not

supported)

• secProp, the security properties